This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft File: IbgvyO2I-ZyrV9doAxdusnqfC_o.mft (raw, json) Hash identifier: uka2LCDJdAdTYFrBdCAG4qpjKuvbanw5RkcVhnuR6xI= Subject key identifier: 5E:92:DE:D4:8C:2B:54:40:AB:11:3A:2F:47:FF:01:0B:C7:B5:65:3C Authority key identifier: 21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA Certificate issuer: /CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa Certificate serial: 019C4246A010A19E18812E7EF61957FFC798 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft Manifest number: 0F9C Signing time: Mon 09 Feb 2026 12:00:50 +0000 Manifest this update: Mon 09 Feb 2026 12:00:50 +0000 Manifest next update: Tue 10 Feb 2026 12:00:50 +0000 Files and hashes: 1: IbgvyO2I-ZyrV9doAxdusnqfC_o.crl (hash: ZJNO5gUIvA3UXQj5esPc3WpNwotvWb/WpNpEk8y9ojs=) 2: hCRU042AoO-wp1TNEdYzfOG7kyM.roa (hash: 458hq105l3Yhrg7POKX+Z5+Z9IN5XlkejgNFXz79fUQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:a0:10:a1:9e:18:81:2e:7e:f6:19:57:ff:c7:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa Validity Not Before: Feb 9 12:00:50 2026 GMT Not After : Feb 10 12:00:50 2026 GMT Subject: CN=5e92ded48c2b5440ab113a2f47ff010bc7b5653c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:59:ee:e7:b0:f4:5c:03:8c:1b:cf:b6:87:30: 20:09:ac:f8:34:9d:2d:63:70:f6:b2:a9:9d:84:93: 27:28:be:91:15:84:10:64:8b:b5:d1:93:ad:cf:a4: d9:56:00:e4:a2:36:db:05:23:bc:31:1d:11:5e:77: 49:68:d3:ef:19:f8:ad:3f:b0:de:d9:1d:df:d3:05: 18:5d:82:d0:22:86:06:42:59:ca:5c:4a:d5:a8:11: 1e:e2:6c:5e:9c:10:29:97:1e:af:9a:40:2c:73:9f: 76:b5:fd:df:7b:2e:8d:8b:9c:44:f7:51:04:c6:5c: 65:ce:9a:0d:29:0b:d2:80:21:37:5e:f2:7a:00:79: 0d:d1:1e:de:59:eb:b5:4b:6f:07:7e:c5:24:94:1e: 30:4e:17:2b:ec:ef:82:a3:b6:18:20:df:a4:08:5f: c9:1c:ab:0d:01:b6:bb:88:56:36:37:31:3c:15:3f: fb:85:74:ef:d8:95:28:a7:73:4c:ea:86:06:84:aa: d4:29:0d:dd:cd:12:45:75:97:70:5c:e1:ec:46:87: 07:41:a1:88:c6:3e:39:39:bd:ba:0f:a5:15:31:8b: df:38:ba:30:31:45:a2:aa:79:a5:5f:01:c2:d3:a8: f1:25:44:c0:a7:93:d9:3e:f6:db:c0:54:d0:94:98: 9d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:92:DE:D4:8C:2B:54:40:AB:11:3A:2F:47:FF:01:0B:C7:B5:65:3C X509v3 Authority Key Identifier: keyid:21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:0a:77:3a:ea:82:e9:d2:f0:63:3e:f1:a3:d9:fe:27:ab:d0: 2f:52:20:42:dc:52:f8:ee:32:55:8a:cd:f2:51:20:2b:8d:1e: 92:5e:7e:8b:a4:78:60:29:c0:89:a5:63:9f:e6:a5:a4:c6:f3: 72:a3:81:85:d3:9b:56:b1:46:64:92:ab:af:af:5c:32:85:91: 12:bf:3d:1a:25:78:8b:81:bb:d6:12:16:e8:d8:d8:09:e5:cc: 39:5d:76:54:87:a7:c8:f5:04:0d:2d:ce:ac:8e:1a:cf:d7:ec: 99:b7:13:99:a9:20:27:ac:13:85:43:5e:42:da:63:b3:42:ae: 61:4d:99:bb:05:99:db:0e:c5:f4:92:96:97:8c:62:37:0e:07: b3:2b:3d:04:f9:74:86:95:c6:83:1f:5e:a9:02:80:3c:27:82: 9b:fd:54:4b:82:e0:e7:19:aa:d4:7c:3f:42:a2:d0:8a:68:62: da:fc:02:1d:c2:08:af:20:ae:77:07:ac:81:ee:0f:45:d9:fb: 63:f0:dc:9a:95:c0:88:88:e2:95:54:3c:00:d3:9d:ab:26:ff: f2:ae:cb:56:e4:70:c0:5a:18:98:f5:2a:c1:ce:e3:2a:d0:8d: 51:80:ff:a9:af:d2:04:60:c2:32:8c:7f:2b:d9:5a:2d:92:b4: e3:a3:ac:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRqAQoZ4YgS5+9hlX/8eYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxYjgyZmM4ZWQ4OGY5OWNhYjU3ZDc2ODAzMTc2ZWIyN2E5 ZjBiZmEwHhcNMjYwMjA5MTIwMDUwWhcNMjYwMjEwMTIwMDUwWjAzMTEwLwYDVQQD Eyg1ZTkyZGVkNDhjMmI1NDQwYWIxMTNhMmY0N2ZmMDEwYmM3YjU2NTNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtFnu57D0XAOMG8+2hzAgCaz4NJ0t Y3D2sqmdhJMnKL6RFYQQZIu10ZOtz6TZVgDkojbbBSO8MR0RXndJaNPvGfitP7De 2R3f0wUYXYLQIoYGQlnKXErVqBEe4mxenBAplx6vmkAsc592tf3fey6Ni5xE91EE xlxlzpoNKQvSgCE3XvJ6AHkN0R7eWeu1S28HfsUklB4wThcr7O+Co7YYIN+kCF/J HKsNAba7iFY2NzE8FT/7hXTv2JUop3NM6oYGhKrUKQ3dzRJFdZdwXOHsRocHQaGI xj45Ob26D6UVMYvfOLowMUWiqnmlXwHC06jxJUTAp5PZPvbbwFTQlJid8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF6S3tSMK1RAqxE6L0f/AQvHtWU8MB8GA1UdIwQY MBaAFCG4L8jtiPmcq1fXaAMXbrJ6nwv6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWJndnlPMkktWnlyVjlkb0F4ZHVzbnFmQ19vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9hYjY1ZjYtMzFiZS00MTQ5LWE2ZTMt YWU1ZmE1M2I5M2IyLzEvSWJndnlPMkktWnlyVjlkb0F4ZHVzbnFmQ19vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS9hYjY1ZjYtMzFiZS00MTQ5LWE2ZTMtYWU1ZmE1M2I5M2Iy LzEvSWJndnlPMkktWnlyVjlkb0F4ZHVzbnFmQ19vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWwp3OuqC 6dLwYz7xo9n+J6vQL1IgQtxS+O4yVYrN8lEgK40ekl5+i6R4YCnAiaVjn+alpMbz cqOBhdObVrFGZJKrr69cMoWREr89GiV4i4G71hIW6NjYCeXMOV12VIenyPUEDS3O rI4az9fsmbcTmakgJ6wThUNeQtpjs0KuYU2ZuwWZ2w7F9JKWl4xiNw4Hsys9BPl0 hpXGgx9eqQKAPCeCm/1US4Lg5xmq1Hw/QqLQimhi2vwCHcIIryCudwesge4PRdn7 Y/DcmpXAiIjilVQ8ANOdqyb/8q7LVuRwwFoYmPUqwc7jKtCNUYD/qa/SBGDCMox/ K9laLZK046OsiQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:56:24 2026 by rpki-client